Comment by doawoo

6 days ago

Incredible, my university class reg system had un-sanitized input for the class search field so if you knew the SQL you could find exactly how full a class was and dump the whole table of classes without needing to wait for your reg to open.

And pretty sure you could insert your student ID into the class that way too :)

1 comment

doawoo

ashton314 6 days ago

Heck you could probably just kick people out of the class that you didn't want to take it with.